Hello dear Jitsi Community,
I am a developer at Apitech (https://apitech.net/), a company which has been working on Jitsi-based projects for the past 5 years. We now have quite an expertise on Jitsi’s whole ecosystem and we would like to contribute by developing a feature that would benefit a lot of people.
Here’s the idea : today, we can use JWT authentication (thanks to Prosody) for newly created conferences. We would like to add a component, to enhance authentication and open the way to many auth possibilities, without breaking any existing thing. That component would communicate with Jitsi on one side, and with an authentication provider (OIDC, OAuth, SAML, CAS, whatever you like !) on the other side, but would always return a JWT to Jitsi ! It would also allow users to get information from their SSO into Jitsi (nickname, avatar, moderator role, …), using the JWT.
Here’s a graphical explanation of these interactions between components
Here’s how it could look like on Jitsi windows
Here’s what the config.js could look like :
I’m sharing that post with you to have your thoughts on a feature like that, but also your ideas and improvements. It’s not a “regular” feature request, as we are ready to do that implementation ourselves, if enough people are interested.
The idea is to make this component as open as possible, to allow people to add their authentication methods. Of course, we would have to develop something that can also works for mobile clients.
Thanks in advance for your thoughts and support !